We do not use any Facebook services that, in our estimation, would provide grounds for Facebook to have shared responsibility for data processing; however, we do refer you to Facebook’s data privacy declaration as a precaution. We cannot fully rule out any risks here.
Data protection is our concern and our legal obligation. To protect the security of your data appropriately during transfer, we use the latest encryption procedures (e.g. SSL/TLS) and secure technical systems.
For the purposes of the General Data Protection Regulation, other data protection laws applicable in Member states of the European Union and other provisions related to data protection, the data controller is:
Am Hofgarten 4
T +49 8161 71-0
The data protection officer for the data controller is:
Prof. Dr Anton Buchmeier
Am Hofgarten 4
T +49 8161 71-5246
Any data subject can make direct contact with our data protection officer at any time for any questions or suggestions on the subject of data protection.
In accordance with Art. 2(6) of the BayHSchG [Bavarian Higher Education Act], Art. 4(1) sentence 1 and 2 of the BayEGovG [Bavarian E-Government Act], and Art. 6(1) letters a, c, e of the EU GDPR, our websites are where we offer our services, administrative support and information to the public about our activity.
Our social media presence forms part of our efforts to reach out to you. Our aim is to provide information that is targeted to specific groups and communicate with you (Art. 2(6) of the BayHSchG). We make it possible for you to quickly get in touch with us by electronic means and communicate instantly through the media of your choice (Section 5(1) no. 2 of the TMG - German Teleservices Act).
We disclose any content and contributions that violate rights of third parties or that constitute a criminal offence or misdemeanour, do not comply with the legal or contractual code of conduct by transmitting them to the competent authority or the social media service and blocking or deleting this information.
For administration and data redaction purposes, function identifiers and personal identifiers with access protection mechanisms are created and changes that have been undertaken with these identifiers logged.
If you access this website or other websites, you transfer data to our web server via your web browser. Whenever you access a website, the following data are recorded so that there can be communication between your web browser and our web server. Depending on the access log used, the log data record will contain information with the following content:
If you write to us with a concern or opinion by email, post, telephone, fax or social media, the information given is processed for the purposes of processing the concern, for possible follow-up questions and for exchanging opinions.
The data subject has the option of registering on the website for certain additional services, indicating personal data. Which personal data are transmitted to the data controller is determined by the respective input mask used for the registration. The personal data entered by the data subject are collected and stored exclusively for internal use by the data controller, and for their own purposes.
The registration of the data subject, with the voluntary indication of personal data, is intended to enable the data controller to offer the data subject contents or services that may only be offered to registered users due to the nature of the matter in question. Registered persons are free to change the personal data specified during the registration at any time, or to have them completely deleted from the data stock of the data controller.
The data controller shall, at any time, provide information upon request to each data subject as to what personal data are stored about the data subject. In addition, the data controller shall correct or erase personal data at the request or indication of the data subject, insofar as there are no statutory storage obligations. A data protection officer named in this privacy notice is available to the data subject in this respect as a contact person.
All our social media providers are certified under the EU-US Privacy Shield and this is visible to anyone, thus ensuring that there is a legally appropriate level of protection for personal data:
The data controller processes and stores the data subject's personal data only for the period of time required to achieve the purpose for which it is stored or only if the data controller is required to store data on account of legislation or regulations that are passed by European Union legislators and regulators or other legislators and the data controller is subject to the legislation or regulations. Should there no longer be any reason to store the data or if a retention period prescribed by a European Union directive or regulation or by other relevant law expires, the personal data will be restricted from processing or deleted as a matter of routine and in accordance with statutory regulations.
You have the following rights according to the General Data Protection Regulation:
Should you exercise your above-mentioned rights, the public body will review whether statutory requirements are met.
You also have a right to appeal to the Bavarian Regional Officer for Data Protection.
We reserve the right to update this Privacy Notice from time to time so that it is always in compliance with current legal requirements, or to implement changes to our services in the privacy notice, e.g. when new services are introduced. The new privacy notice shall then apply when you next visit the website.